The web identity token that was passed is expired or is not valid. Get a new identity * token from the identity provider and then retry the request.
* @public */ export declare class ExpiredTokenException extends __BaseException { readonly name: "ExpiredTokenException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionTypeThe request was rejected because the policy document was malformed. The error message * describes the specific error.
* @public */ export declare class MalformedPolicyDocumentException extends __BaseException { readonly name: "MalformedPolicyDocumentException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionTypeThe request was rejected because the total packed size of the session policies and * session tags combined was too large. An Amazon Web Services conversion compresses the session policy * document, session policy ARNs, and session tags into a packed binary format that has a * separate limit. The error message indicates by percentage how close the policies and * tags are to the upper size limit. For more information, see Passing Session Tags in STS in * the IAM User Guide.
*You could receive this error even though you meet other defined session policy and * session tag limits. For more information, see IAM and STS Entity Character Limits in the IAM User * Guide.
* @public */ export declare class PackedPolicyTooLargeException extends __BaseException { readonly name: "PackedPolicyTooLargeException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionTypeSTS is not activated in the requested region for the account that is being asked to * generate credentials. The account administrator must use the IAM console to activate * STS in that region. For more information, see Activating and Deactivating STS in an Amazon Web Services Region in the IAM * User Guide.
* @public */ export declare class RegionDisabledException extends __BaseException { readonly name: "RegionDisabledException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionTypeThe identity provider (IdP) reported that authentication failed. This might be because * the claim is invalid.
*If this error is returned for the AssumeRoleWithWebIdentity operation, it
* can also mean that the claim has expired or has been explicitly revoked.
The web identity token that was passed could not be validated by Amazon Web Services. Get a new * identity token from the identity provider and then retry the request.
* @public */ export declare class InvalidIdentityTokenException extends __BaseException { readonly name: "InvalidIdentityTokenException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionTypeThe request could not be fulfilled because the identity provider (IDP) that was asked * to verify the incoming identity token could not be reached. This is often a transient * error caused by network conditions. Retry the request a limited number of times so that * you don't exceed the request rate. If the error persists, the identity provider might be * down or not responding.
* @public */ export declare class IDPCommunicationErrorException extends __BaseException { readonly name: "IDPCommunicationErrorException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType